Certificate Validation user interface in LibreOffice allows potential vulnerability. Signed macros are scripts that have been digitally signed by the developer using a cryptographic signature. When a document with a signed macro is opened a warning is displayed by LibreOffice before the macro is executed. Previously if verification failed the user could fail to understand the failure and choose to enable the macros anyway. This issue affects LibreOffice: from 24.2 before 24.2.5.

The version of libreoffice installed on the remote host is prior to 5.3.6.1-21. It is, therefore, affected by a vulnerability as referenced in the ALAS2LIBREOFFICE-2024-004 advisory.

    Certificate Validation user interface in LibreOffice allows potential vulnerability.



    Signed macros are scripts that have been digitally signed by thedeveloper using a cryptographic signature.
    When a document with a signedmacro is opened a warning is displayed by LibreOffice before the macrois     executed.

    Previously if verification failed the user could fail to understand the failure and choose to enable the     macros anyway.

    This issue affects LibreOffice: from 24.2 before 24.2.5. (CVE-2024-6472)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5583 advisory.

    [7.1.8.1-14.0.1]
    - Replace colors with Oracle colors [Orabug: 32120093]
    - Added the --with-hamcrest option to configure.

    [7.1.8.1]
    - Remove Red Hat branding
    - Change vendor to RESF

    [1:7.1.8.1-14]
    - Fix CVE-2024-6472 remove ability to trust not validated macro signatures in       high security

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5598 advisory.

    [6.4.7.2-18.0.1]
    - Replace colors with Oracle colors [Orabug: 32120093]
    - Build with --with-vendor='Oracle America, Inc.'
    - Added the --with-hamcrest option to configure.

    [6.4.7.2]
    - Remove Red Hat branding
    - Change vendor to RESF

    [1:6.4.7.2-18]
    - Fix CVE-2024-6472 remove ability to trust not validated macro signatures in       high security

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5886 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:5598 advisory.

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:5583 advisory.

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5601 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5608 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5599 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5598 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5607 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5583 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5584 advisory.

    LibreOffice is an open source, community-developed office productivity suite. It includes key desktop     applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a     drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office     suite.

    Security Fix(es):

    * libreoffice: bility to trust not validated macro signatures removed in high security mode     (CVE-2024-6472)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6962-1 advisory.

    It was discovered that LibreOffice incorrectly allowed users to enable macros when a cryptographic     signature failed to validate. If a user were tricked into opening a specially crafted document, a remote     attacker could possibly execute arbitrary macros.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5737 advisory.

    - -------------------------------------------------------------------------     Debian Security Advisory DSA-5737-1                   security@debian.org     https://www.debian.org/security/                       Moritz Muehlenhoff     August 05, 2024                       https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : libreoffice     CVE ID         : CVE-2024-6472

    If LibreOffice failed to validate a signed macro, it displayed a warning     but still allowed execution of the script after printing a warning.
    Going forward in high macro security mode such macros are now disabled.

    For additional information please refer to     https://www.libreoffice.org/about-us/security/advisories/cve-2024-6472/

    For the oldstable distribution (bullseye), this problem has been fixed     in version 1:7.0.4-4+deb11u10.

    For the stable distribution (bookworm), this problem has been fixed in     version 4:7.4.7-1+deb12u4.

    We recommend that you upgrade your libreoffice packages.

    For the detailed security status of libreoffice please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/libreoffice

    Further information about Debian Security Advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
208051	Amazon Linux 2 : libreoffice (ALASLIBREOFFICE-2024-004)	Nessus	Amazon Linux Local Security Checks	high
207555	Oracle Linux 9 : libreoffice (ELSA-2024-5583)	Nessus	Oracle Linux Local Security Checks	high
207554	Oracle Linux 8 : libreoffice (ELSA-2024-5598)	Nessus	Oracle Linux Local Security Checks	high
206232	RHEL 8 : libreoffice (RHSA-2024:5886)	Nessus	Red Hat Local Security Checks	high
206067	AlmaLinux 8 : libreoffice (ALSA-2024:5598)	Nessus	Alma Linux Local Security Checks	high
206064	AlmaLinux 9 : libreoffice (ALSA-2024:5583)	Nessus	Alma Linux Local Security Checks	high
206031	RHEL 8 : libreoffice (RHSA-2024:5601)	Nessus	Red Hat Local Security Checks	high
205870	RHEL 8 : libreoffice (RHSA-2024:5608)	Nessus	Red Hat Local Security Checks	high
205869	RHEL 8 : libreoffice (RHSA-2024:5599)	Nessus	Red Hat Local Security Checks	high
205868	RHEL 8 : libreoffice (RHSA-2024:5598)	Nessus	Red Hat Local Security Checks	high
205867	RHEL 9 : libreoffice (RHSA-2024:5607)	Nessus	Red Hat Local Security Checks	high
205817	RHEL 9 : libreoffice (RHSA-2024:5583)	Nessus	Red Hat Local Security Checks	high
205816	RHEL 9 : libreoffice (RHSA-2024:5584)	Nessus	Red Hat Local Security Checks	high
205630	Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : LibreOffice vulnerability (USN-6962-1)	Nessus	Ubuntu Local Security Checks	high
204990	Debian dsa-5737 : fonts-opensymbol - security update	Nessus	Debian Local Security Checks	high

Detections

Analytics

CVE-2024-6472

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high